Virtual TapeServer 8.4 Configuration Guide
Enabling and Configuring Data Encryption | 89
8. Type the password of the specified user in the Password field.
9. Click SUBMIT.
After you add a key generator and a key database backup host (other than localhost), allow five
minutes for the key generator to create the first set of keys and key IDs. Key IDs may not be
available until after this initial time period.
Adding a key database backup host
By default, each VTS server is configured as its own backup host. You must configure at least one
other backup host on the key generator. (You do not need to configure a backup host on a server that
is not configured as the key generator.) The key server backs up the key database to the localhost
and all defined backup hosts every time a new key is generated. (Keys are not available for use until
the key database is successfully backed up to the localhost and at least one other backup host.)
It is highly recommended that you configure at least one other backup host that is not in the VTS
environment. An off-site backup host ensures that data is safe in case of unrecoverable failures in the
VTS environment.
Before beginning
To configure a server as a backup host, the server must support SCP, either through the use of the
scp or scp2 program. The scp program is installed on every VTS server. If you use a non-VTS server
as a backup host, make sure SCP is supported.
To add a backup host
Requires Administration group membership
1. Click Configuration > Data Encryption on the navigation pane.
2. If necessary, log in using an account that is a member of the Administration group. Click the
Log In button at the top of the page and enter a username and password.
3. Click ADD NEW HOST in the KEY DATABASE BACKUP/RESTORE HOSTS section of the page.
The following is displayed: